56e26de451c2d1739ed8d2cdc878c6acb2ac62f4d65503df01f6e5c1bc75e6de | Triage

Sharing

General

Target

23138f48084bab88f04a36ad05812520_NeikiAnalytics
Size

111KB
Sample

240509-nk69nahg35
MD5

23138f48084bab88f04a36ad05812520
SHA1

d82c1cb90d4f2d5c5670711b56867f82c46f6e34
SHA256

56e26de451c2d1739ed8d2cdc878c6acb2ac62f4d65503df01f6e5c1bc75e6de
SHA512

61c5967e69a95c51ce3e89794530b6b7e01820d0516d1088666c6895fbbb8bb6e34dccc6766039461931accbdaa0e9b7822318bf8bcbe71cfe9da03fa39e590b
SSDEEP

3072:a5yXrFm6ec2VNi0VJFSMrb1e3w0v0wnJcefSXQHPTTAkvB5Ddj:a5yXrF32VNiQFSMr05tnJfKXqPTX7DB

Score

10^/10

persistence

Malware Config

Targets

- Target
  
  23138f48084bab88f04a36ad05812520_NeikiAnalytics
- Size
  
  111KB
- MD5
  
  23138f48084bab88f04a36ad05812520
- SHA1
  
  d82c1cb90d4f2d5c5670711b56867f82c46f6e34
- SHA256
  
  56e26de451c2d1739ed8d2cdc878c6acb2ac62f4d65503df01f6e5c1bc75e6de
- SHA512
  
  61c5967e69a95c51ce3e89794530b6b7e01820d0516d1088666c6895fbbb8bb6e34dccc6766039461931accbdaa0e9b7822318bf8bcbe71cfe9da03fa39e590b
- SSDEEP
  
  3072:a5yXrFm6ec2VNi0VJFSMrb1e3w0v0wnJcefSXQHPTTAkvB5Ddj:a5yXrF32VNiQFSMr05tnJfKXqPTX7DB
Score

10^/10

persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2